80 matches found
CVE-2018-25297
CVE-2018-25297 describes a buffer overflow in Wansview 1.0.2 during camera addition, where oversized input (e.g., 2000-byte payloads in the Camera name and DID number fields) can crash the application. The advisory notes a local attack vector with LOW complexity and HIGH impact on availability. N...
Oneflow security vulnerabilities
OneFlow is an open-source deep learning framework developed by OneFlow. Version 0.9.0 of OneFlow contains a security vulnerability. This vulnerability stems from a device ID verification flaw, which may allow a denial-of-service attack by invoking flow.cuda.synchronize with invalid or out-of-rang...
CVE-2020-12859
Unnecessary fields in the OpenTrace/BlueTrace protocol in COVIDSafe through v1.0.17 allow a remote attacker to identify a device model by observing cleartext payload data. This allows re-identification of devices, especially less common phone models or those in low-density situations...
CVE-2023-53841
In the Linux kernel, the following vulnerability has been resolved: devlink: report devlinkporttypewarn source device devlinkporttypewarn is scheduled for port devlink and warning when the port type is not set. But from this warning it is not easy found out which device driver has no devlink port...
Smart Surveillance: Identifying IoT Device Behaviours Using ML-Powered Traffic Analysis
The proliferation of Internet of Things IoT devices has grown exponentially in recent years, introducing significant security challenges. Accurate identification of the types of IoT devices and their associated actions through network traffic analysis is essential to mitigate potential threats. B...
CVE-2025-66270
The KDE Connect protocol 8 before 2025-11-28 does not correlate device IDs across two packets. This affects KDE Connect before 25.12 on desktop, KDE Connect before 0.5.4 on iOS, KDE Connect before 1.34.4 on Android, GSConnect before 68, and Valent before 1.0.0.alpha.49...
EUVD-2016-7460
Malware in sbrugna...
EUVD-2020-19104
Malware in sbrugna...
EUVD-2020-5141
Malware in sbrugna...
EUVD-2020-23145
Malware in sbrugna...
EUVD-2023-12408
Malicious code in bioql PyPI...
EUVD-2024-33023
Malicious code in bioql PyPI...
EUVD-2022-36746
Malicious code in bioql PyPI...
EUVD-2022-42322
Malicious code in bioql PyPI...
EUVD-2023-46975
Malicious code in bioql PyPI...
EUVD-2022-39577
Malicious code in bioql PyPI...
EUVD-2022-39566
Malicious code in bioql PyPI...
Noisy Networks, Nosy Neighbors: Inferring Privacy Invasive Information from Encrypted Wireless Traffic
This thesis explores the extent to which passive observation of wireless traffic in a smart home environment can be used to infer privacy-invasive information about its inhabitants. Using a setup that mimics the capabilities of a nosy neighbor in an adjacent flat, we analyze raw 802.11 packets an...
How To Automate Ticket Creation, Device Identification and Threat Triage With Tines
Run by the team at workflow orchestration and AI platform Tines, the Tines library features over 1,000 pre-built workflows shared by security practitioners from across the community - all free to import and deploy through the platform's Community Edition. A recent standout is a workflow that...
CVE-2022-39877
Improper access control vulnerability in ProfileSharingAccount in Group Sharing prior to versions 13.0.6.15 in Android S12, 13.0.6.14 in Android R11 and below allows attackers to identify the device...